> -----Original Message-----
> From: Nils Wilhelm [mailto:murphy_at_planet-of-art.de]
> Sent: 30 July 2010 00:58
> To: users_at_subversion.apache.org
> Subject: Re: svnserv + ssh + ldap
>
> Hi there,
>
> this is in addition to my last post:
>
> If i use
> - svn:// protocol everything will be sent in plain text so this
> will have security issues -> not usable for me
>
> - svn+ssh:// protocol i need an account on the server for every
> person for two reasons: The authentication using ssh and to manage
> the file permissions of the repository. This could be avoided using
> certificates as i read in a howto. But this wouldn't integrate LDAP
>
> - https: protocal using an apache webserver i enable everybody
> to browse the repository using a webbrowser. Is that correct?
> Could this be avoided?
>
That depends on how you configure apache ~ our svn server on the
intranet uses https: and requires authentication before you get to see
anything on the site (controlled by mod_sspi lookup in active
directory). The svn areas are further protected by path based
authentication based on the username so only named users in the authz
file get to see svn data at all.
> Does anybody see any alternatives to the three mentioned? Or a way to
> avoid the mentioned cons?
>
> Best regards
>
> Nils
>
Received on 2010-07-30 08:25:16 CEST